$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft (raw, json) Hash identifier: nGvcDbeg1Lz2v8HipWBBOgARF7R7weN0ROjASOl0FFM= Subject key identifier: 77:04:38:07:D8:A5:3B:71:9E:E2:DF:D2:AE:8C:77:D8:F9:79:82:94 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft Manifest number: 023B Signing time: Wed 25 Mar 2026 01:55:21 +0000 Manifest this update: Wed 25 Mar 2026 01:55:20 +0000 Manifest next update: Wed 01 Apr 2026 01:55:20 +0000 Files and hashes: 1: hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl (hash: +mguUoNdaQYvY6deJuUqBwAyTHFUfRLClq+s2VvwXyM=) 2: 54FB2C8CD61711EEB983D919C4F9AE02.roa (hash: kdVR/T3ew7TyPnhxkEWRlQM3zCM8IzXis0xGyLY9c78=) 3: 5576D030D61711EEB983D919C4F9AE02.roa (hash: 05QuhzxS6Rv7IEmh1jeaGvvIDM5pA0OXeqbGhZ+/gWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE, serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Mar 25 01:55:20 2026 GMT Not After : Apr 1 01:55:20 2026 GMT Subject: CN=69c34089-79d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:03:91:c1:e2:96:9e:f8:cb:56:03:a1:8f:52: e2:f2:87:e4:7d:b0:7a:40:ff:2c:a5:f8:d3:63:6c: 05:ca:a0:a8:fb:cb:f7:22:2f:2c:57:fb:57:52:34: 4b:57:fc:c1:d9:35:a2:19:de:b6:9f:44:b3:29:bc: 06:dc:11:e1:1c:15:b9:31:2a:ec:b8:02:e9:32:c5: e1:8b:6a:ac:f3:c0:b9:64:5f:84:c1:71:3a:55:6d: b6:d9:07:65:70:e1:73:24:54:73:4c:31:4d:47:b6: df:98:51:f8:a6:03:4b:43:c0:97:cd:e0:86:ef:22: 49:3f:4c:8d:d0:7f:ea:96:b6:ea:7f:07:76:6a:ae: 1d:24:6f:57:0f:53:5e:61:de:19:41:f1:47:50:52: 4c:f3:05:1e:c9:5a:83:88:9f:94:5e:30:fa:25:46: fa:c0:b0:4d:0b:98:c1:78:9a:43:12:80:30:a8:78: 9b:c4:d5:a3:9c:60:b1:34:21:8e:7b:07:f9:24:eb: a3:04:c8:9b:b6:76:16:a0:27:e9:4f:36:e6:c7:33: 82:be:ec:2c:20:97:48:ec:0f:b9:c7:dc:02:ed:68: e3:87:8f:fb:fd:3f:5f:bd:86:11:fc:5e:2a:74:f7: ae:02:ca:5a:42:0b:15:d7:fa:c0:42:8a:fa:d8:29: 1e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:04:38:07:D8:A5:3B:71:9E:E2:DF:D2:AE:8C:77:D8:F9:79:82:94 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:94:0e:41:6d:80:ea:e0:47:1d:4f:68:fe:5c:8b:e1:26:4f: 21:65:5a:c6:f1:c8:a2:24:95:52:a5:d9:df:47:82:4a:62:af: a2:0f:3d:64:33:a1:06:82:4d:1f:c6:77:51:36:81:c2:63:4b: 69:80:4a:c3:ed:4c:ae:0d:40:9a:13:46:33:12:5d:87:50:23: cd:83:5f:1f:fb:0f:87:a1:c5:c2:11:f5:1a:da:34:1d:c3:76: c9:d5:0f:ea:b3:b1:00:86:78:63:61:cb:85:82:5c:a3:3c:9d: d1:3b:f2:dd:74:67:1f:11:83:8f:d2:ff:d2:ca:a5:ec:fb:3f: 04:ba:ab:d4:39:dc:2d:ff:49:ff:c3:24:d2:41:22:d6:c5:02: c8:ed:45:de:89:22:65:73:2d:b0:21:96:33:0a:37:95:4c:53: 97:de:72:0e:08:40:2b:c4:6c:91:46:7a:94:6b:3a:3a:b5:8f: dd:4d:33:32:a7:35:a7:fe:db:a4:6f:4d:b2:d3:86:2a:07:e7: ac:37:eb:93:ad:48:07:16:ce:e0:8a:8e:a0:e9:a4:af:6c:c9: 0d:8e:68:ae:9a:7f:7e:1a:ce:9b:33:cf:67:5e:66:fa:76:06: 63:85:01:01:2f:1f:0a:f4:f9:37:ac:52:ec:96:08:6c:47:4d: b2:4a:fa:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjYwMzI1MDE1NTIwWhcNMjYwNDAxMDE1NTIwWjAYMRYwFAYD VQQDEw02OWMzNDA4OS03OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowORweKWnvjLVgOhj1Li8ofkfbB6QP8spfjTY2wFyqCo+8v3Ii8sV/tXUjRL V/zB2TWiGd62n0SzKbwG3BHhHBW5MSrsuALpMsXhi2qs88C5ZF+EwXE6VW222Qdl cOFzJFRzTDFNR7bfmFH4pgNLQ8CXzeCG7yJJP0yN0H/qlrbqfwd2aq4dJG9XD1Ne Yd4ZQfFHUFJM8wUeyVqDiJ+UXjD6JUb6wLBNC5jBeJpDEoAwqHibxNWjnGCxNCGO ewf5JOujBMibtnYWoCfpTzbmxzOCvuwsIJdI7A+5x9wC7Wjjh4/7/T9fvYYR/F4q dPeuAspaQgsV1/rAQor62CkeHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHcEOAfY pTtxnuLf0q6Md9j5eYKUMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NThCRS83QzdGQjJGRUMyMTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBI Z1FyX3Vtd29fX0kxZ3FJT3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjpQOQW2A6uBHHU9o/lyL4SZPIWVaxvHIoiSVUqXZ30eCSmKvog89ZDOhBoJN H8Z3UTaBwmNLaYBKw+1Mrg1AmhNGMxJdh1AjzYNfH/sPh6HFwhH1Gto0HcN2ydUP 6rOxAIZ4Y2HLhYJcozyd0Tvy3XRnHxGDj9L/0sql7Ps/BLqr1DncLf9J/8Mk0kEi 1sUCyO1F3okiZXMtsCGWMwo3lUxTl95yDghAK8RskUZ6lGs6OrWP3U0zMqc1p/7b pG9NstOGKgfnrDfrk61IBxbO4IqOoOmkr2zJDY5orpp/fhrOmzPPZ15m+nYGY4UB AS8fCvT5N6xS7JYIbEdNskr6LQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:38:21 2026 by rpki-client